Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...
Overview: JavaScript powers essential website features like payments, videos, forms, and menus across modern browsers today.Enabling JavaScript in Windows brows ...
Axios, a widely used JavaScript HTTP client, was briefly distributed through npm in two malicious versions after a maintainer ...
Hackers linked to North Korea are suspected of an ambitious attack on an inconspicuous but widely used software package, ...
Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.
Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...
A new report dubbed "BrowserGate" warns that Microsoft's LinkedIn is using hidden JavaScript scripts on its website to scan ...
A hacker inserted malware in Axios, an open-source web tool downloaded tens of millions of times weekly, in a widespread hack ...
The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...
�� CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest [email protected] now pulls ...
A supply chain compromise involving the widely used JavaScript package Axios is now being tied to a North Korea-linked threat actor, turning what already looked like a serious open-source incident ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results